General

  • Target

    028fca1a10a71aeb2f16447136f988340a63c7f6b21f09efdbd2213825b90c46

  • Size

    86KB

  • MD5

    c70b8c3f82b667074e4745533be6d33f

  • SHA1

    b9820279fe58c2e81c81b9aaea195406bd1bc309

  • SHA256

    028fca1a10a71aeb2f16447136f988340a63c7f6b21f09efdbd2213825b90c46

  • SHA512

    223477a83f93b0eb4c086bd08b902078780312c352b729a7c6b41fbede6a8f1290f3bf3a8f3928bf7d10b6a3cdaf9641184c44ee57cf3c8da7a69264d5b5ab57

  • SSDEEP

    1536:dIvBmBx0OKqE9RQ3K7D8GSjtGY5jBWlhWegFvTx0CmuJd4BXac6F:dIvBmBGNG3KkGEtBnWfzgFVBbd4InF

Score
10/10

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 028fca1a10a71aeb2f16447136f988340a63c7f6b21f09efdbd2213825b90c46
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections